Static task
static1
Behavioral task
behavioral1
Sample
rattest.exe
Resource
win7-20240221-en
General
-
Target
rattest.exe
-
Size
45KB
-
MD5
04044408bf7e814ba6f1c6b6447f792d
-
SHA1
452b4cd1fe4233737da07e29db96ccb04d8949ff
-
SHA256
5d1ac09c4715873b368bf8c1e196cddfa3332455ad2321ff7abd1245935937e0
-
SHA512
a6dc67ed426fabe7436fb74c8e26bfedc994ecac722106bc1389e87e082028e7d34396dbb13f917d5adf4508239942ad79a0262c52d246f379e345e9cd987d07
-
SSDEEP
768:MeVfTWD9KWSXPX9Ek75rj3n5ZYosrRULQC9SdQWz1QB6SF11vrk/xM:MeV7WD9HU5rj35irGsC9w1Qoc1o/xM
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource rattest.exe
Files
-
rattest.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 43KB - Virtual size: 42KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ